Recently, DNS hijacking attacks occur frequently, the UK National Cyber Security Center (NCSC) provides some mitigation measures. A recent news report about the domain name system (DNS) attack changes, thus the National Cyber Security Center (NCSC) provides mitigation measures to help organizations and individuals to guard against such threats.
Domain Name System (DNS) is a distributed database that will map domain names and IP address with each other, making it easier to access the Internet. From the user's perspective, DNS hijacking is a major phishing and traffic interception, for organizations that could lead to loss of control of the domain name.
A report Avast telemetry data shows that in the period from February to June, Brazil has destroyed at least 180,000 routers, DNS settings have also changed. By the end of 3, Avast anti-virus software has prevented more than 4.6 million times a cross-site request forgery (CSRF) attempts, these attempts to change the DNS settings on the router.
Last week, Cisco Talos analyzed using DNS hijacking cyber-espionage hacker organization - turtle begins to restart. During the event at least two years, Sea Turtle mainly for the Middle East and North Africa organization, destruction of telecommunications companies, DNS service IT companies and domain name registrars used.
British NCSC Friday released a document outlining the risk of DNS hijacking and provide advice to organizations and individuals brought.
Domain name registration account is a high-value target, hackers can take over such documents by completing and phishing and other common techniques. Therefore, NCSC recommends that you use only strong passwords to prevent phishing and enable multiple authentication. Regularly check the detailed information associated with your account and make sure that the update is a good way to prevent being taken over your account. Limit access to your account as well as additional protection for the Registrar Lock service can also reduce the risk of an intruder control account.
DNS infrastructure for the organization run, NCSC implementation of the recommendations and change access control system to provide backup and restore capabilities for DNS records, and enforce strict access management computer DNS service. NCSC also recommends using SSL and monitor DNS Security Extensions (DNSSEC). SSL helps to closely monitor the company domain SSL certificate. DNSSEC to ensure that DNS records on the server is encrypted.
For individual users, the latest firmware update the device, check whether the site has a valid certificate, verify that the DNS settings are a good way of reducing the threat of DNS hijacking. Some network-level security solutions available to consumers but also to prevent hackers exploit to modify DNS settings.